Lucene search
K

156 matches found

Ubuntu
Ubuntu
added 2013/02/12 6:16 p.m.64 views

USN-1719-1: Linux kernel (Oneiric backport) vulnerabilities

It was discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating the origin on Netlink messages. An untrusted local user can cause a denial of service of Linux guests in Hyper-V virtualization environments. CVE-2012-2669 Dmitry Monakhov reported a race...

4.9CVSS5.3AI score0.00366EPSS
Exploits0
Ubuntu
Ubuntu
added 2013/01/22 3:0 p.m.75 views

USN-1704-1: Linux kernel (Quantal HWE) vulnerabilities

Brad Spengler discovered a flaw in the Linux kernel's uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. CVE-2012-0957 Jon Howell reported a flaw in the Linux kernel's KVM Kernel-based virtual machine subsystem's handling of the XSAVE feature. On hosts,...

4.9CVSS6.5AI score0.00959EPSS
Exploits5
OpenVAS
OpenVAS
added 2012/09/11 12:0 a.m.29 views

Slackware Advisory SSA:2004-110-01 utempter security update

The remote host is missing an update as announced via advisory SSA:2004-110-01. OpenVAS Vulnerability Test $Id: esoftslkssa200411001.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

2.1CVSS0.5AI score0.01095EPSS
Exploits1
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.30 views

Slackware: Security Advisory (SSA:2004-110-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.6AI score0.01095EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2012/07/22 8:42 p.m.8 views

Russian Hacker Arrested For DDoS Attacks on Amazon

Dmitry Olegovich Zubakha, a Russian man accused of launching distributed-denial-of-service DDOS attacks on Amazon.com, has been arrested this week by authorities in Cyprus based on an international warrant, the Department of Justice revealed. Zubakha, a native of Moscow, was indicted for two deni...

6.7AI score
Exploits0
erpscan
erpscan
added 2011/12/03 12:0 a.m.18 views

SAP Portal - unauthorized file read

Application: SAP Portal Vendor URL: http://www.sap.com Bugs: Directory traversal Exploits: YES Reported: 12.03.2011 Vendor response: 13.03.2011 Date of Public Advisory: 12.09.2012 Reference: SAP Security Note 1707494 Author: Dmitry Chastukhin ERPScan Description It is possible to read files in...

6.3AI score
Exploits0
erpscan
erpscan
added 2011/06/12 12:0 a.m.26 views

SAP NetWeaver AdapterFramework - information disclosure

Application: SAP NetWeaver J2EE Versions Affected: SAP NetWeaver J2EE Vendor URL: http://www.sap.com Bugs: Information Disclosure Exploits: YES Reported: 06.12.2011 Vendor response: 07.12.2011 Date of Public Advisory: 13.11.2012 Reference: SAP Security Note 1679897 Authors: Dmitry Chastukhin...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2011/01/26 12:0 a.m.93 views

[DSECRG-00142] SAP Crystal Reports 2008 - actionNavjsp_xss

XSS vulnerability found in SAP Crystal Report Server 2008 Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 04.03.2010 Vendor response: 05.03.2010 Date of SAPNOTE Publishe...

Exploits0
seebug.org
seebug.org
added 2010/05/11 12:0 a.m.16 views

ESET Smart Security / NOD32 Antivirus LZH Processing Denial of Service

No description provided by source. Oleksiuk Dmitry has discovered a vulnerability in ESET Smart Security and ESET NOD32 Antivirus, which can be exploited by malicious people to cause a DoS Denial of Service. The vulnerability is caused due to an error when processing LZH archives. This can be...

7.1AI score
Exploits0
erpscan
erpscan
added 2010/04/03 12:0 a.m.25 views

SAP Crystal Reports 2008 — actionNavjsp_xss

Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Bugs: Linked XSS Vulnerability Exploits: YES Reported: 04.03.2010 Vendor response: 05.03.2010 Date of SAP Security Note Published: 08.10.2010 Date of Public Advisory:...

0.1AI score
Exploits0
erpscan
erpscan
added 2010/03/29 12:0 a.m.26 views

SAP Crystal Reports 2008 — Directory Traversal

Application: SAP Crystal Report Server 2008 Versions Affected: SAP Crystal Report Server 2008 Vendor URL: http://www.sap.com Bugs: Directory Traversal File Read Exploits: YES Reported: 29.03.2010 Vendor response: 30.03.2010 Date of SAP Security Note Published: 08.10.2010 Date of Public Advisory:...

0.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/09/10 12:0 a.m.21 views

GLSA-200909-10 : LMBench: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-200909-10 LMBench: Insecure temporary file usage Dmitry E. Oboukhov reported that the rccs and STUFF scripts do not handle '/tmp/sdiff.' temporary files securely. NOTE: There might be further occurances of insecure temporary file...

6.9CVSS5.5AI score0.00406EPSS
Exploits1References2
Gentoo Linux
Gentoo Linux
added 2009/09/09 12:0 a.m.26 views

LMBench: Insecure temporary file usage

Background LMBench is a suite of simple, portable benchmarks for UNIX platforms. Description Dmitry E. Oboukhov reported that the rccs and STUFF scripts do not handle "/tmp/sdiff." temporary files securely. NOTE: There might be further occurances of insecure temporary file usage. Impact A local...

6.9CVSS6.3AI score0.00406EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.34 views

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : openoffice.org, openoffice.org-amd64 vulnerabilities (USN-677-1)

Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were tricked into opening a specially crafted document, a remote attacker might be able to execute arbitrary code with user privileges. CVE-2008-2237, CVE-2008-2238 Dmitry E. Oboukhov...

9.3CVSS5.7AI score0.06752EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-677-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.6AI score0.06752EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2009/03/08 12:0 a.m.18 views

GLSA-200903-08 : gEDA: Insecure temporary file creation

The remote host is affected by the vulnerability described in GLSA-200903-08 gEDA: Insecure temporary file creation Dmitry E. Oboukhov reported an insecure temporary file usage within the sch2eaglepos.sh script. Impact : A local attacker could perform symlink attacks to overwrite arbitrary files...

6.9CVSS5.5AI score0.0039EPSS
Exploits1References2
seebug.org
seebug.org
added 2009/02/26 12:0 a.m.37 views

ksquirrel-libs库RGBE文件解析栈溢出漏洞

BUGTRAQ ID: 33902 CVECAN ID: CVE-2008-5263 ksquirrel-libs是一组KSquirrel的图形解码库。 ksquirrel-libs库的kernel/klshdr/fmtcodechdr.cpp文件中的mtcodec::getHdrHead函数存在栈溢出漏洞,如果用户受骗使用链接到该库的应用程序打开了特制的Radiance RGBE(.hdr)文件的话,就可以触发这个溢出,导致执行任意代码。 Baryshev Dmitry ksquirrel-libs 0.8 厂商补丁: Baryshev Dmitry ---------------...

6.8CVSS6.4AI score0.0227EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2008/12/12 12:0 a.m.33 views

Honeyd: Insecure temporary file creation

Background Honeyd is a small daemon that creates virtual hosts on a network. Description Dmitry E. Oboukhov reported an insecure temporary file usage within the "test.sh" script. Impact A local attacker could perform symlink attacks and overwrite arbitrary files with the privileges of the user...

6.9CVSS6.3AI score0.0035EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/11/26 1:7 a.m.63 views

USN-677-1: OpenOffice.org vulnerabilities

Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were tricked into opening a specially crafted document, a remote attacker might be able to execute arbitrary code with user privileges. CVE-2008-2237, CVE-2008-2238 Dmitry E. Oboukhov...

9.3CVSS6.1AI score0.06752EPSS
Exploits2
OSV
OSV
added 2008/10/05 12:0 a.m.28 views

DSA-1643-1 feta - denial of service

Bulletin has no description...

7.2CVSS6.2AI score0.00345EPSS
Exploits0
Rows per page
Query Builder